The Autotitle for WordPress plugin through 1.0.3 allows CSRF attack
Reporter | Title | Published | Views | Family All 8 |
---|---|---|---|---|
Prion | Cross site request forgery (csrf) | 29 Jan 202415:15 | – | prion |
NVD | CVE-2023-6946 | 29 Jan 202415:15 | – | nvd |
Vulnrichment | CVE-2023-6946 Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF | 29 Jan 202414:44 | – | vulnrichment |
WPVulnDB | Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF | 2 Jan 202400:00 | – | wpvulndb |
Patchstack | WordPress Autotitle for WordPress Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | 31 Jan 202400:00 | – | patchstack |
wpexploit | Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF | 2 Jan 202400:00 | – | wpexploit |
Cvelist | CVE-2023-6946 Autotitle for WordPress <= 1.0.3 - Settings Update to Stored XSS via CSRF | 29 Jan 202414:44 | – | cvelist |
Wordfence Blog | Wordfence Intelligence Weekly WordPress Vulnerability Report (January 1, 2024 to January 7, 2024) | 11 Jan 202416:24 | – | wordfence |
[
{
"vendor": "Unknown",
"product": "Autotitle for WordPress",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "1.0.3"
}
],
"defaultStatus": "affected",
"collectionURL": "https://wordpress.org/plugins"
}
]
Source | Link |
---|---|
wpscan | www.wpscan.com/vulnerability/54a00416-c7e3-44f3-8dd2-ed9e748055e6/ |
magos-securitas | www.magos-securitas.com/txt/CVE-2023-6946 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo